CVE-2015-3643

Name of the Vulnerable Software and Affected Versions usb-creator versions prior to 0.2.38.3ubuntu0.1 on Ubuntu 12.04 LTS usb-creator versions prior to 0.2.56.3ubuntu0.1 on Ubuntu 14.04 LTS usb-creator versions prior to 0.2.62ubuntu0.3 on Ubuntu 14.10 usb-creator versions prior to 0.2.67ubuntu0.1 on Ubuntu 15.04

Description The issue allows local users to gain privileges by leveraging a missing call to check polkit for the KVMTest method.

Recommendations For usb-creator version prior to 0.2.38.3ubuntu0.1 on Ubuntu 12.04 LTS, update to version 0.2.38.3ubuntu0.1 or later. For usb-creator version prior to 0.2.56.3ubuntu0.1 on Ubuntu 14.04 LTS, update to version 0.2.56.3ubuntu0.1 or later. For usb-creator version prior to 0.2.62ubuntu0.3 on Ubuntu 14.10, update to version 0.2.62ubuntu0.3 or later. For usb-creator version prior to 0.2.67ubuntu0.1 on Ubuntu 15.04, update to version 0.2.67ubuntu0.1 or later.